Sample viewer

{"DateBased":true,"Day":1,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":3416,"SideJobID":0}

.

GIF

Syscalls:

{"DateBased":true,"Day":4,"Month":1,"Year":1980,"Hour":0,"Min":0,"Second":0,"TimeBased":false,"OriginalID":3416,"SideJobID":0}

.

GIF

Syscalls:

Time	Syscall Op	Syscall Name
2018-12-25T11:49:06.353557047Z	65	PC: 12a52 | Delete file (Filename = 'is started by using +the SHELL command in the CONFIG.SYS file. F##¸#ã#,$z$À$%U% %à%,&y&')
2018-12-25T11:49:06.359871349Z	42	PC: 9fb8c | Get date 0x9fb8c: cmp al, 5 0x9fb8e: jne 0x9fbbf 0x9fb90: mov ah, 9 0x9fb92: mov dx, 0x1ea 0x9fb95: push cs 0x9fb96: pop ds 0x9fb97: pushf 0x9fb98: lcall ptr cs:[0x1fd] 0x9fb9d: mov bx, 0xb800 0x9fba0: mov es, bx 0x9fba2: mov cx, 0x230 0x9fba5: mov bx, 0 0x9fba8: mov word ptr es:[bx], 0x4420 0x9fbad: mov word ptr es:[bx + 0x460], 0x1120 0x9fbb4: mov word ptr es:[bx + 0x8c0], 0x6620 0x9fbbb: inc bx 0x9fbbc: inc bx 0x9fbbd: loop 0x9fba8 0x9fbbf: pop ds 0x9fbc0: pop es
2018-12-25T11:49:06.362726051Z	9	PC: 9fb9d | Display string (Could not find end pointer)
2018-12-25T11:49:06.368131652Z	77	PC: 11fe0 | Get program return code
2018-12-25T11:49:06.370590306Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.373601602Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.378094402Z	72	PC: 12174 | Allocate memory
2018-12-25T11:49:06.380025537Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.382604346Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.388296373Z	72	PC: 1218d | Allocate memory
2018-12-25T11:49:06.390620736Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.393149963Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.397689113Z	37	PC: 123c4 | Set interrupt vector (Interrupt = '34' AKA 'Random write')
2018-12-25T11:49:06.399380616Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.412760537Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.417147783Z	37	PC: 123cb | Set interrupt vector (Interrupt = '35' AKA 'Get file size in records')
2018-12-25T11:49:06.418240923Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.420786326Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.42548626Z	37	PC: 123d2 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-25T11:49:06.427054709Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.43252403Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.437068759Z	62	PC: 122ab | Close file
2018-12-25T11:49:06.438736356Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.444672725Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.450987535Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.452468444Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.455162911Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.459841141Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.461277348Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.463957738Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.468921618Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.470567472Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.473596712Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.478629788Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.480452182Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.483376307Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.499277261Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.501094827Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.504188944Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.508539286Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.509972434Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.513194382Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.517519024Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.520185004Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.52288075Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.527511282Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.529277783Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.532574969Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.536897137Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.538375025Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.540637892Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.547064426Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.548580573Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.550627325Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.555063111Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.556441319Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.558397146Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.563215774Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.564636168Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.566669404Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.572309478Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.573712151Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.575721006Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.5818434Z	62	PC: 122ab | Close file (See above)
2018-12-25T11:49:06.584678844Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.586701981Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.592139904Z	99	PC: 9a3b7 | Get DBCS lead byte table pointer
2018-12-25T11:49:06.594101464Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.596125653Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.601247954Z	56	PC: 94bd9 | Get or set country info
2018-12-25T11:49:06.603079169Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.605077354Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.610525406Z	64	PC: 9a628 | Write file or device (Write 2 bytes on handle 1)
2018-12-25T11:49:06.614809929Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.616725926Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.621332005Z	25	PC: 94c42 | Get default drive
2018-12-25T11:49:06.623012018Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.625244089Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.632058903Z	71	PC: 96ebd | Get current directory
2018-12-25T11:49:06.636046117Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.638267964Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.643177349Z	64	PC: 9a628 | Write file or device (See above)
2018-12-25T11:49:06.647212996Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.649572943Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.654939093Z	2	PC: 96e92 | Character output (Char = '3e')
2018-12-25T11:49:06.657260427Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.659385392Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.664590527Z	93	PC: 94d00 | File sharing functions
2018-12-25T11:49:06.666794822Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.66909188Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.674953146Z	93	PC: 94d07 | File sharing functions
2018-12-25T11:49:06.677321362Z	42	PC: 9fb8c | Get date (See above)
2018-12-25T11:49:06.68000667Z	9	PC: 9fb9d | Display string (See above)
2018-12-25T11:49:06.684486526Z	10	PC: 94d19 | Buffered keyboard input